Nixpkgs Security Tracker

Login with GitHub
⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Dismissed
(browse all)
Permalink CVE-2025-30596
updated 9 months, 4 weeks ago by @LeSuisse Activity log
  • Created automatic suggestion 10 months ago
  • @LeSuisse dismissed 9 months, 4 weeks ago
WordPress include-file <= 1 - Arbitrary File Download Vulnerability

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in NotFound include-file allows Path Traversal. This issue affects include-file: from n/a through 1.

Affected products

include-file
  • =<1

Matching in nixpkgs

pkgs.haskellPackages.include-file

Inclusion of files in executables at compile-time